CVE-2013-1504

2013-04-1712:14:51

oracle

web.nvd.nist.gov

cve-2013-1504

oracle

weblogic server

fusion middleware

remote attack

integrity

cve-2013-2390

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

Low

EPSS

0.002

Percentile

55.2%

JSON

Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.0.2, 10.3.5, 10.3.6, and 12.1.1 allows remote attackers to affect integrity via unknown vectors related to WebLogic Console, a different vulnerability than CVE-2013-2390.

Affected configurations

Nvd

Node

oraclefusion_middlewareMatch10.0.2

oraclefusion_middlewareMatch10.3.5

oraclefusion_middlewareMatch10.3.6

oraclefusion_middlewareMatch12.1.1

VendorProductVersionCPE
oraclefusion_middleware10.0.2cpe:2.3:a:oracle:fusion_middleware:10.0.2:*:*:*:*:*:*:*
oraclefusion_middleware10.3.5cpe:2.3:a:oracle:fusion_middleware:10.3.5:*:*:*:*:*:*:*
oraclefusion_middleware10.3.6cpe:2.3:a:oracle:fusion_middleware:10.3.6:*:*:*:*:*:*:*
oraclefusion_middleware12.1.1cpe:2.3:a:oracle:fusion_middleware:12.1.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
oracle	fusion_middleware	10.0.2	cpe:2.3:a:oracle:fusion_middleware:10.0.2:::::::*
oracle	fusion_middleware	10.3.5	cpe:2.3:a:oracle:fusion_middleware:10.3.5:::::::*
oracle	fusion_middleware	10.3.6	cpe:2.3:a:oracle:fusion_middleware:10.3.6:::::::*
oracle	fusion_middleware	12.1.1	cpe:2.3:a:oracle:fusion_middleware:12.1.1:::::::*